casdoor/idp/provider.go

// Copyright 2021 The Casdoor Authors. All Rights Reserved.
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
//      http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.

package idp

import (
	"net/http"
	"strings"

	"golang.org/x/oauth2"
)

type UserInfo struct {
	Id          string
	Username    string
	DisplayName string
	UnionId     string
	Email       string
	Phone       string
	CountryCode string
	AvatarUrl   string
}

type IdProvider interface {
	SetHttpClient(client *http.Client)
	GetToken(code string) (*oauth2.Token, error)
	GetUserInfo(token *oauth2.Token) (*UserInfo, error)
}

func GetIdProvider(typ string, subType string, clientId string, clientSecret string, appId string, redirectUrl string, hostUrl string, authUrl string, tokenUrl string, userInfoUrl string) IdProvider {
	if typ == "GitHub" {
		return NewGithubIdProvider(clientId, clientSecret, redirectUrl)
	} else if typ == "Google" {
		return NewGoogleIdProvider(clientId, clientSecret, redirectUrl)
	} else if typ == "QQ" {
		return NewQqIdProvider(clientId, clientSecret, redirectUrl)
	} else if typ == "WeChat" {
		return NewWeChatIdProvider(clientId, clientSecret, redirectUrl)
	} else if typ == "Facebook" {
		return NewFacebookIdProvider(clientId, clientSecret, redirectUrl)
	} else if typ == "DingTalk" {
		return NewDingTalkIdProvider(clientId, clientSecret, redirectUrl)
	} else if typ == "Weibo" {
		return NewWeiBoIdProvider(clientId, clientSecret, redirectUrl)
	} else if typ == "Gitee" {
		return NewGiteeIdProvider(clientId, clientSecret, redirectUrl)
	} else if typ == "LinkedIn" {
		return NewLinkedInIdProvider(clientId, clientSecret, redirectUrl)
	} else if typ == "WeCom" {
		if subType == "Internal" {
			return NewWeComInternalIdProvider(clientId, clientSecret, redirectUrl)
		} else if subType == "Third-party" {
			return NewWeComIdProvider(clientId, clientSecret, redirectUrl)
		} else {
			return nil
		}
	} else if typ == "Lark" {
		return NewLarkIdProvider(clientId, clientSecret, redirectUrl)
	} else if typ == "GitLab" {
		return NewGitlabIdProvider(clientId, clientSecret, redirectUrl)
	} else if typ == "Adfs" {
		return NewAdfsIdProvider(clientId, clientSecret, redirectUrl, hostUrl)
	} else if typ == "Baidu" {
		return NewBaiduIdProvider(clientId, clientSecret, redirectUrl)
	} else if typ == "Alipay" {
		return NewAlipayIdProvider(clientId, clientSecret, redirectUrl)
	} else if typ == "Custom" {
		return NewCustomIdProvider(clientId, clientSecret, redirectUrl, authUrl, tokenUrl, userInfoUrl)
	} else if typ == "Infoflow" {
		if subType == "Internal" {
			return NewInfoflowInternalIdProvider(clientId, clientSecret, appId, redirectUrl)
		} else if subType == "Third-party" {
			return NewInfoflowIdProvider(clientId, clientSecret, appId, redirectUrl)
		} else {
			return nil
		}
	} else if typ == "Casdoor" {
		return NewCasdoorIdProvider(clientId, clientSecret, redirectUrl, hostUrl)
	} else if typ == "Okta" {
		return NewOktaIdProvider(clientId, clientSecret, redirectUrl, hostUrl)
	} else if typ == "Douyin" {
		return NewDouyinIdProvider(clientId, clientSecret, redirectUrl)
	} else if isGothSupport(typ) {
		return NewGothIdProvider(typ, clientId, clientSecret, redirectUrl, hostUrl)
	} else if typ == "Bilibili" {
		return NewBilibiliIdProvider(clientId, clientSecret, redirectUrl)
	}

	return nil
}

var gothList = []string{
	"Apple",
	"AzureAD",
	"Slack",
	"Steam",
	"Line",
	"Amazon",
	"Auth0",
	"BattleNet",
	"Bitbucket",
	"Box",
	"CloudFoundry",
	"Dailymotion",
	"Deezer",
	"DigitalOcean",
	"Discord",
	"Dropbox",
	"EveOnline",
	"Fitbit",
	"Gitea",
	"Heroku",
	"InfluxCloud",
	"Instagram",
	"Intercom",
	"Kakao",
	"Lastfm",
	"Mailru",
	"Meetup",
	"MicrosoftOnline",
	"Naver",
	"Nextcloud",
	"OneDrive",
	"Oura",
	"Patreon",
	"Paypal",
	"SalesForce",
	"Shopify",
	"Soundcloud",
	"Spotify",
	"Strava",
	"Stripe",
	"TikTok",
	"Tumblr",
	"Twitch",
	"Twitter",
	"Typetalk",
	"Uber",
	"VK",
	"Wepay",
	"Xero",
	"Yahoo",
	"Yammer",
	"Yandex",
	"Zoom",
}

func isGothSupport(provider string) bool {
	for _, value := range gothList {
		if strings.EqualFold(value, provider) {
			return true
		}
	}
	return false
}
Update license headers. 2022-02-13 23:39:27 +08:00			`// Copyright 2021 The Casdoor Authors. All Rights Reserved.`
Add IdProvider interface. 2021-02-21 22:33:53 +08:00			`//`
			`// Licensed under the Apache License, Version 2.0 (the "License");`
			`// you may not use this file except in compliance with the License.`
			`// You may obtain a copy of the License at`
			`//`
			`// http://www.apache.org/licenses/LICENSE-2.0`
			`//`
			`// Unless required by applicable law or agreed to in writing, software`
			`// distributed under the License is distributed on an "AS IS" BASIS,`
			`// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`// See the License for the specific language governing permissions and`
			`// limitations under the License.`

			`package idp`

			`import (`
			`"net/http"`
feat: add three idp support by goth. (#351) 1. add 3 providers: apple, azuread(v1) and slack. 2. support importing providers from goth. Signed-off-by: 0x2a <stevesough@gmail.com> 2021-12-10 00:55:27 +08:00			`"strings"`
Add IdProvider interface. 2021-02-21 22:33:53 +08:00
			`"golang.org/x/oauth2"`
			`)`

Change provider interface. 2021-03-23 23:23:59 +08:00			`type UserInfo struct {`
Improve providers. 2021-05-31 00:13:38 +08:00			`Id string`
			`Username string`
			`DisplayName string`
feat: add dingtalk union_id (#1110) 2022-09-08 14:44:06 +08:00			`UnionId string`
Improve providers. 2021-05-31 00:13:38 +08:00			`Email string`
Support mobile in DingTalk userinfo 2023-04-29 01:11:58 +08:00			`Phone string`
			`CountryCode string`
Improve providers. 2021-05-31 00:13:38 +08:00			`AvatarUrl string`
Change provider interface. 2021-03-23 23:23:59 +08:00			`}`

Add IdProvider interface. 2021-02-21 22:33:53 +08:00			`type IdProvider interface {`
Change provider interface. 2021-03-23 23:23:59 +08:00			`SetHttpClient(client *http.Client)`
			`GetToken(code string) (*oauth2.Token, error)`
			`GetUserInfo(token oauth2.Token) (UserInfo, error)`
Add IdProvider interface. 2021-02-21 22:33:53 +08:00			`}`

feat: try to support custom OAuth provider (#667) * feat: try to support private provider * fix: modify code according to code review * feat: set example values for custom params 2022-04-16 17:17:45 +08:00			`func GetIdProvider(typ string, subType string, clientId string, clientSecret string, appId string, redirectUrl string, hostUrl string, authUrl string, tokenUrl string, userInfoUrl string) IdProvider {`
Fix GetIdProvider() bug. 2022-01-29 09:52:10 +08:00			`if typ == "GitHub" {`
Change provider interface. 2021-03-23 23:23:59 +08:00			`return NewGithubIdProvider(clientId, clientSecret, redirectUrl)`
Fix GetIdProvider() bug. 2022-01-29 09:52:10 +08:00			`} else if typ == "Google" {`
Change provider interface. 2021-03-23 23:23:59 +08:00			`return NewGoogleIdProvider(clientId, clientSecret, redirectUrl)`
Fix GetIdProvider() bug. 2022-01-29 09:52:10 +08:00			`} else if typ == "QQ" {`
Change provider interface. 2021-03-23 23:23:59 +08:00			`return NewQqIdProvider(clientId, clientSecret, redirectUrl)`
Fix GetIdProvider() bug. 2022-01-29 09:52:10 +08:00			`} else if typ == "WeChat" {`
feat: add WeChatIdProvider (#62) * feat: add WeChatIdProvider Signed-off-by: Weihao <1340908470@qq.com> * refactor: refactor WeChatIdProvider to suit to IdProvider interface; translate the annotation to English Signed-off-by: Weihao <1340908470@qq.com> * refactor: remove unnecessary comment Signed-off-by: Weihao <1340908470@qq.com> 2021-05-17 14:17:46 +08:00			`return NewWeChatIdProvider(clientId, clientSecret, redirectUrl)`
Fix GetIdProvider() bug. 2022-01-29 09:52:10 +08:00			`} else if typ == "Facebook" {`
feat: add facebook provider (#79) * feat: add facebook provider Signed-off-by: WindSpirit <simon343riley@gmail.com> * fix: set fb id to username and reformat Signed-off-by: WindSpirit <simon343riley@gmail.com> 2021-06-06 10:06:54 +08:00			`return NewFacebookIdProvider(clientId, clientSecret, redirectUrl)`
Fix GetIdProvider() bug. 2022-01-29 09:52:10 +08:00			`} else if typ == "DingTalk" {`
feat: add dingtalk provider (#94) * feat: add dingtalk provider Signed-off-by: zKen <690898835@qq.com> * fix: amend the comment Signed-off-by: zKen <690898835@qq.com> 2021-06-09 11:15:49 +08:00			`return NewDingTalkIdProvider(clientId, clientSecret, redirectUrl)`
Fix GetIdProvider() bug. 2022-01-29 09:52:10 +08:00			`} else if typ == "Weibo" {`
feat: add weibo provider Signed-off-by: wasabi <690898835@qq.com> 2021-06-10 16:55:31 +08:00			`return NewWeiBoIdProvider(clientId, clientSecret, redirectUrl)`
Fix GetIdProvider() bug. 2022-01-29 09:52:10 +08:00			`} else if typ == "Gitee" {`
feat: add gitee provider (#104) * feat: add gitee provider Signed-off-by: wasabi <690898835@qq.com> * Update gitee.go Signed-off-by: wasabi <690898835@qq.com> 2021-06-14 12:53:07 +08:00			`return NewGiteeIdProvider(clientId, clientSecret, redirectUrl)`
Fix GetIdProvider() bug. 2022-01-29 09:52:10 +08:00			`} else if typ == "LinkedIn" {`
feat: add linkedin provider Signed-off-by: wasabi <690898835@qq.com> 2021-07-03 20:53:38 +08:00			`return NewLinkedInIdProvider(clientId, clientSecret, redirectUrl)`
Fix GetIdProvider() bug. 2022-01-29 09:52:10 +08:00			`} else if typ == "WeCom" {`
			`if subType == "Internal" {`
			`return NewWeComInternalIdProvider(clientId, clientSecret, redirectUrl)`
			`} else if subType == "Third-party" {`
			`return NewWeComIdProvider(clientId, clientSecret, redirectUrl)`
			`} else {`
			`return nil`
			`}`
			`} else if typ == "Lark" {`
feat: add lark provider (#264) Signed-off-by: sh1luo <690898835@qq.com> 2021-08-14 16:00:38 +08:00			`return NewLarkIdProvider(clientId, clientSecret, redirectUrl)`
Fix GetIdProvider() bug. 2022-01-29 09:52:10 +08:00			`} else if typ == "GitLab" {`
feat: add gitlab provider (#273) Signed-off-by: sh1luo <690898835@qq.com> 2021-08-19 21:03:57 +08:00			`return NewGitlabIdProvider(clientId, clientSecret, redirectUrl)`
feat: add AD-FS support (#505) Signed-off-by: Steve0x2a <stevesough@gmail.com> 2022-02-20 15:01:48 +08:00			`} else if typ == "Adfs" {`
			`return NewAdfsIdProvider(clientId, clientSecret, redirectUrl, hostUrl)`
Fix GetIdProvider() bug. 2022-01-29 09:52:10 +08:00			`} else if typ == "Baidu" {`
feat: add baidu support as idp (#438) * feat: add baidu support as idp Signed-off-by: Steve0x2a <stevesough@gmail.com> * fix: add license Signed-off-by: Steve0x2a <stevesough@gmail.com> 2022-01-22 19:36:44 +08:00			`return NewBaiduIdProvider(clientId, clientSecret, redirectUrl)`
feat: add Alipay support as idp (#638) * feat: add alipay support as idp * fix: rename a static svg icon * fix: sort imports * fix: no longer use pkcs8 package 2022-04-02 22:37:13 +08:00			`} else if typ == "Alipay" {`
			`return NewAlipayIdProvider(clientId, clientSecret, redirectUrl)`
feat: try to support custom OAuth provider (#667) * feat: try to support private provider * fix: modify code according to code review * feat: set example values for custom params 2022-04-16 17:17:45 +08:00			`} else if typ == "Custom" {`
			`return NewCustomIdProvider(clientId, clientSecret, redirectUrl, authUrl, tokenUrl, userInfoUrl)`
feat: add infoflow idp support (#472) * feat: add infoflow internal backend support Signed-off-by: Steve0x2a <stevesough@gmail.com> * feat: add infoflow idp support Signed-off-by: Steve0x2a <stevesough@gmail.com> * fix: copyright and comment Signed-off-by: Steve0x2a <stevesough@gmail.com> 2022-02-05 21:54:38 +08:00			`} else if typ == "Infoflow" {`
			`if subType == "Internal" {`
fix: infoflow's parameter error (#480) * fix: missing state parameter Signed-off-by: Steve0x2a <stevesough@gmail.com> * fix: infoflow's parameter error Signed-off-by: Steve0x2a <stevesough@gmail.com> * fix: use userid instead of imid Signed-off-by: Steve0x2a <stevesough@gmail.com> 2022-02-07 21:50:51 +08:00			`return NewInfoflowInternalIdProvider(clientId, clientSecret, appId, redirectUrl)`
feat: add infoflow idp support (#472) * feat: add infoflow internal backend support Signed-off-by: Steve0x2a <stevesough@gmail.com> * feat: add infoflow idp support Signed-off-by: Steve0x2a <stevesough@gmail.com> * fix: copyright and comment Signed-off-by: Steve0x2a <stevesough@gmail.com> 2022-02-05 21:54:38 +08:00			`} else if subType == "Third-party" {`
			`return NewInfoflowIdProvider(clientId, clientSecret, appId, redirectUrl)`
			`} else {`
			`return nil`
			`}`
feat: add casdoor as itself idp support (#578) Signed-off-by: Steve0x2a <stevesough@gmail.com> 2022-03-18 18:28:46 +08:00			`} else if typ == "Casdoor" {`
			`return NewCasdoorIdProvider(clientId, clientSecret, redirectUrl, hostUrl)`
Add Okta OAuth provider (#729) 2022-05-01 18:31:42 +08:00			`} else if typ == "Okta" {`
			`return NewOktaIdProvider(clientId, clientSecret, redirectUrl, hostUrl)`
feat: add Douyin OAuth provider (#753) 2022-05-15 20:59:21 +08:00			`} else if typ == "Douyin" {`
			`return NewDouyinIdProvider(clientId, clientSecret, redirectUrl)`
Fix GetIdProvider() bug. 2022-01-29 09:52:10 +08:00			`} else if isGothSupport(typ) {`
fix: fix AAD single-tenant mode bug 2023-03-31 19:24:03 +08:00			`return NewGothIdProvider(typ, clientId, clientSecret, redirectUrl, hostUrl)`
feat: add Bilibili OAuth (#720) * implemented bilibili oauth * add bilibili oauth * add document address * add frontend page * uncheck 2022-05-12 10:07:52 +08:00			`} else if typ == "Bilibili" {`
			`return NewBilibiliIdProvider(clientId, clientSecret, redirectUrl)`
Add IdProvider interface. 2021-02-21 22:33:53 +08:00			`}`

			`return nil`
			`}`
feat: add three idp support by goth. (#351) 1. add 3 providers: apple, azuread(v1) and slack. 2. support importing providers from goth. Signed-off-by: 0x2a <stevesough@gmail.com> 2021-12-10 00:55:27 +08:00
feat: add all remaining Goth providers to Casdoor OAuth login (#1484) * feat: add Amazon support as OAuth 3rd-party login * refactor: comebine the same URLs * refactor: use hyper component to create login button * feat: add all remaining Goth providers to Casdoor OAuth login * refactor: remove redundant props * fix: check provider auth url and params 2023-02-04 12:20:18 +08:00			`var gothList = []string{`
			`"Apple",`
			`"AzureAD",`
			`"Slack",`
			`"Steam",`
			`"Line",`
			`"Amazon",`
			`"Auth0",`
			`"BattleNet",`
			`"Bitbucket",`
			`"Box",`
			`"CloudFoundry",`
			`"Dailymotion",`
			`"Deezer",`
			`"DigitalOcean",`
			`"Discord",`
			`"Dropbox",`
			`"EveOnline",`
			`"Fitbit",`
			`"Gitea",`
			`"Heroku",`
			`"InfluxCloud",`
			`"Instagram",`
			`"Intercom",`
			`"Kakao",`
			`"Lastfm",`
			`"Mailru",`
			`"Meetup",`
			`"MicrosoftOnline",`
			`"Naver",`
			`"Nextcloud",`
			`"OneDrive",`
			`"Oura",`
			`"Patreon",`
			`"Paypal",`
			`"SalesForce",`
			`"Shopify",`
			`"Soundcloud",`
			`"Spotify",`
			`"Strava",`
			`"Stripe",`
			`"TikTok",`
			`"Tumblr",`
			`"Twitch",`
			`"Twitter",`
			`"Typetalk",`
			`"Uber",`
			`"VK",`
			`"Wepay",`
			`"Xero",`
			`"Yahoo",`
			`"Yammer",`
			`"Yandex",`
			`"Zoom",`
			`}`
feat: add three idp support by goth. (#351) 1. add 3 providers: apple, azuread(v1) and slack. 2. support importing providers from goth. Signed-off-by: 0x2a <stevesough@gmail.com> 2021-12-10 00:55:27 +08:00
			`func isGothSupport(provider string) bool {`
			`for _, value := range gothList {`
			`if strings.EqualFold(value, provider) {`
			`return true`
			`}`
			`}`
			`return false`
			`}`